This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: rWtT4lAWMRyLY/jIyhK7SygFPcx6lBrF2oaYdkqAecQ= Subject key identifier: 88:CC:59:C8:05:9A:92:D5:B2:94:16:8E:83:40:3E:02:F3:C2:A2:2E Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 1A0BA27985FCA9D35640A0636965AEF3B95CAC16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 0323 Signing time: Sat 24 Jan 2026 08:10:57 +0000 Manifest this update: Sat 24 Jan 2026 08:05:57 +0000 Manifest next update: Tue 27 Jan 2026 19:37:57 +0000 Files and hashes: 1: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: uFvJDDnE+LzWscDNPWULjpdUKOX2mvB/YxTyjJbL490=) 2: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: SaglbTs2Sm97iqGUTpHLhK4uFUxx2JxCBReDItgEQOA=) 3: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: mnd4/vggFzxLJwjyWUA0L6j7PCrnH4DFUryR+wYIfpE=) 4: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: ta8cyJGAuX8M5px06fD7ixeqP65bXdztJIzRgtjjUTw=) 5: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: DZhIHh+Q1/lFglHPCtQYtJARiOU+Khz/cuUC8LvdiAk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 19:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:0b:a2:79:85:fc:a9:d3:56:40:a0:63:69:65:ae:f3:b9:5c:ac:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Jan 24 08:05:57 2026 GMT Not After : Jan 27 19:37:57 2026 GMT Subject: CN=88CC59C8059A92D5B294168E83403E02F3C2A22E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ee:d9:64:4b:ac:1f:5b:fd:fb:7a:f8:98:ae: b9:57:a7:3c:83:04:db:ef:62:a6:e0:a2:77:58:87: 78:9c:55:22:12:ac:4e:21:63:73:43:10:4c:7d:ab: ce:5c:58:de:50:2c:97:7c:e0:f3:d2:42:7b:59:37: 03:a8:16:95:77:50:38:ce:5c:99:84:4a:e5:58:f7: 1b:7d:4b:51:80:6c:7e:d9:04:a7:24:e0:21:e3:4d: d2:7a:e5:bb:31:a4:c6:03:0d:65:bd:eb:3d:a3:ab: f6:b3:b4:41:2e:ef:0c:ba:a3:9f:0a:f3:03:b3:f0: 0a:b0:c4:cf:bf:5d:98:1a:10:87:3c:59:d6:85:7a: b2:5f:7a:41:21:b2:38:f1:15:1a:7a:97:f8:3f:56: 66:25:da:68:54:1a:44:52:5e:55:01:d1:b1:b0:3a: 01:15:c5:0b:e6:bf:96:a6:18:47:82:fd:af:23:e1: 22:95:2f:a7:d9:4d:c2:19:19:40:4d:cf:1d:a7:4a: 0d:cd:ac:9f:82:b9:28:54:6b:ef:a1:8c:ec:a6:6c: 1a:f1:79:59:ef:37:be:a7:d3:f1:60:2b:c4:f1:0b: 84:5b:de:74:67:b5:84:45:c9:45:3d:fb:c2:84:18: 1d:bb:5b:da:67:19:d8:76:4c:48:61:55:b2:0e:d0: 26:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:CC:59:C8:05:9A:92:D5:B2:94:16:8E:83:40:3E:02:F3:C2:A2:2E X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:2e:3b:dd:d2:1c:c4:d0:de:3b:9d:bc:fe:f4:9c:f9:e2:06: fd:2b:44:bb:3a:48:23:10:9e:2e:76:ea:28:f9:11:76:de:1e: bd:80:79:72:27:c9:ee:48:98:9d:ed:90:66:54:07:ab:e0:e7: 4a:2b:da:da:eb:93:9a:3c:c8:a0:29:ab:df:70:da:2d:a9:79: ec:43:2c:6a:07:de:5d:78:6c:6a:d2:18:b6:36:76:62:32:3a: 15:cb:57:fe:b5:5f:87:8a:1b:b0:54:cf:51:b5:4f:42:66:a0: 44:2a:5c:13:bc:fe:5c:e5:2f:ab:27:95:69:7b:ff:7a:0d:e1: 88:33:34:3a:73:1b:7d:99:34:b6:7c:3a:05:82:04:a2:68:3d: 26:3c:f7:33:97:ae:50:78:7d:22:2b:12:14:c9:9e:45:89:8c: 89:d2:57:81:eb:5e:9b:a1:bd:8f:57:9d:88:cb:6d:29:4e:c3: 3f:c6:2d:c3:96:cd:9e:f2:43:7f:76:e3:d1:72:ef:61:35:01: ab:2e:69:1e:17:56:4e:4b:6b:eb:38:3e:20:0c:1d:4e:c9:80: c5:6b:ea:31:04:4c:44:4a:23:57:28:8b:42:bd:67:cc:57:ea: 88:30:f9:0f:da:ce:a4:20:e5:67:a2:45:41:36:45:9c:6f:71: 77:a0:59:df -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGguieYX8qdNWQKBjaWWu87lcrBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNjAxMjQwODA1NTdaFw0yNjAxMjcxOTM3NTdaMDMxMTAvBgNV BAMTKDg4Q0M1OUM4MDU5QTkyRDVCMjk0MTY4RTgzNDAzRTAyRjNDMkEyMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW7tlkS6wfW/37eviYrrlXpzyD BNvvYqbgondYh3icVSISrE4hY3NDEEx9q85cWN5QLJd84PPSQntZNwOoFpV3UDjO XJmESuVY9xt9S1GAbH7ZBKck4CHjTdJ65bsxpMYDDWW96z2jq/aztEEu7wy6o58K 8wOz8AqwxM+/XZgaEIc8WdaFerJfekEhsjjxFRp6l/g/VmYl2mhUGkRSXlUB0bGw OgEVxQvmv5amGEeC/a8j4SKVL6fZTcIZGUBNzx2nSg3NrJ+CuShUa++hjOymbBrx eVnvN76n0/FgK8TxC4Rb3nRntYRFyUU9+8KEGB27W9pnGdh2TEhhVbIO0CZpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiMxZyAWaktWylBaOg0A+AvPCoi4wHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGMuO93SHMTQ3judvP70nPniBv0rRLs6SCMQ ni526ij5EXbeHr2AeXInye5ImJ3tkGZUB6vg50or2trrk5o8yKApq99w2i2peexD LGoH3l14bGrSGLY2dmIyOhXLV/61X4eKG7BUz1G1T0JmoEQqXBO8/lzlL6snlWl7 /3oN4YgzNDpzG32ZNLZ8OgWCBKJoPSY89zOXrlB4fSIrEhTJnkWJjInSV4HrXpuh vY9XnYjLbSlOwz/GLcOWzZ7yQ39249Fy72E1AasuaR4XVk5La+s4PiAMHU7JgMVr 6jEETERKI1coi0K9Z8xX6ogw+Q/azqQg5WeiRUE2RZxvcXegWd8= -----END CERTIFICATE-----Generated at Sun Jan 25 23:40:05 2026 by rpki-client